CVE-2024-20080
CVSS V2 None
CVSS V3 None
Description
In gnss service, there is a possible escalation of privilege due to improper certificate validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08720039; Issue ID: MSV-1424.
Overview
- CVE ID
- CVE-2024-20080
- Assigner
- MediaTek
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-07-01T03:18:08.128Z
- Last Modified Date
- 2024-07-01T03:18:08.128Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://corp.mediatek.com/product-security-bulletin/July-2024 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-20080 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20080 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-07-01 13:03:46 | Added to TrackCVE |